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Deriving SN from PSN: a general proof technique 

Emmanuel Polonowski 



Abstract 

In the framework of explicit substitutions there is two termination 
properties: preservation of strong normahzation (PSN), and strong 
normahzation (SN). Since there are not easily proved, only one of them 
is usually established (and sometimes none). We propose here a con- 
nection between them which helps to get SN when one already has 
PSN. For this purpose, we formalize a general proof technique of SN 
which consists in expanding substitutions into "pure" A-terms and to 
inherit SN of the whole calculus by SN of the "pure" calculus and by 
PSN. We apply it successfully to a large set of calculi with explicit 
substitutions, allowing us to estabhsh SN, or, at least, to trace back 
the failure of SN to that of PSN. 
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1 Introduction 

Calculi with explicit substitutions were introduced [T as a bridge between 
A-calculus [71 [2] and concrete implementations of functional programming 
languages. Those calculi intend to refine the evaluation process by proposing 
reduction rules to deal with the substitution mechanism - a meta-operation 
in the traditional A-calculus. It appears that, with those new rules, it was 
much harder (and sometimes impossible) to get termination properties. 
The two main termination properties of calculi with explicit substitutions 

are: 

• Preservation of strong normalization (PSN), which says that if a 
pure term (i.e. without explicit substitutions) is strongly normalizing 
(i.e. cannot be infinitely reduced) in the pure calculus (i.e. the cal- 
culus without explicit substitutions), then this term is also strongly 
normalizing with respect to the calculus with explicit substitutions. 

• Strong normalization (SN), which says that, with respect to a typ- 
ing system, every typed term is strongly normalizing in the calculus 
with explicit substitutions, i.e. every terms in the subset of typed 
terms cannot be infinitely reduced. 

These two properties are not redundant, and Fig.[T]shows the differences 
between them. PSN says that the horizontally and diagonally hatched rect- 
angle is included in the diagonally hatched rectangle. SN says that the 
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vertically hatched rectangle is included in the diagonally hatched rectan- 
gle. Even if they work on a different set of terms, there is a common part: 
the vertically and horizontally hatched rectangle, which represent the typed 
pure terms. 




Figure 1: Termination properties 

SN and PSN are both termination properties, although their proofs are 
not always clearly related: sometimes SN is shown independently of PSN 
(directly, by simulation, etc., see for example [H EH]), sometimes SN proofs 
uses PSN (see for example [1]). We present here a general proof technique 
of SN via PSN, initially suggested by H. Herbelin, which uses that common 
part of typed pure terms. 

More formally, we may introduce the following notations: we denote A 
the set of A-terms, At the set of typed A-terms with a given typing system 
T, AsN the set of terminating A-terms (i.e. with a finite derivation tree); 
we denote A'''', A;^, A^jy the corresponding set for calculi with eXplicit 
substitutions. 

By definition, we have the following set inclusions: 

At C A and Asn C A 
A^ C A^ and Af^ C A^^ 
A c A-^ and At C A^ 
The usual strong normalisation property of typed A-calculus gives 

At c A5JV 
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As regard to calculi with explicit substitutions, we have the following 
properties. At first, the property PSN gives 

A^iv c Af^ 

At last, the strong normalization property of typed A"'^-terms completes 
with the following inclusion: 

A^ C Agjy 

In the following section, we formalize a proof technique that exploits this 
diagram and in the remaining sections we apply this technique to a set of 
calculi. This set has been chosen for the variety of their definitions: with or 
without De Bruijn indices, unary or multiple substitutions, with or without 
composition of substitutions, and even a symmetric non-deterministic calcu- 
lus. In the last section, we briefly talk about perspectives in this framework. 



2 Proof Technique 

The idea of this technique is the following. Let t be a typed term with explicit 
substitutions for which we want to show termination. With the help of its 
typing judgment, we build a typed pure term t' which can be reduced to t. 
For that purpose, we expand the substitutions of t into redexes. We call this 
expansion Ateb (the opposite of Beta which is usually the name of the rule 
which creates explicit substitutions). Then, with SN of the pure calculus 
and PSN, we can export the strong normalization of t' (in the pure calculus) 
to t (in the calculus with explicit substitutions). 

In practice, this sketch will only apply in some cases, and some others 
will require some adjustment to this technique. For our technique to work, 
we need that the Ateb expansion satisfies some properties. The first one is 
always easily checked. 

Property 2.1 (Preservation of typability) If t is typable, with respect 
to a typing system T, in the calculus with explicit substitution, then Ateb(t) 
is typable, with respect to a typing system T' (possibly T' = T) in the pure 
calculus. 



Only some calculi can exhibit an Ateb function which satisfies the second 



one. 



Property 2.2 (Initialization) Ateb{t) reduces to t in zero or more steps 
in the calculus with explicit substitutions. 



If we can get it, then we use the direct proof to be presented in section 2.1 



Otherwise, we need to use the simulation proof to be presented in section 2.2 
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2.1 Direct proof 

We can immediately establish the theorem. 



Theorem 2.3 For all typing systems T and T' such that, in the pure cal- 
culus, all typable terms with respect to T are strongly normalizing, if there 
exists a function Ateb from explicit substitution terms to pure terms satis- 
fying properties 2.1 and 2.2 then PSN implies SN (with respect to T'). 



Proof: For every typed term t of the calculus with explicit substitution. 



Ateb{t) is a pure typed term (by property 2.1). By the strong normaliza- 
tion hypothesis of the typed pure calculus, we have Ateb{t) G A^jv 
hypothesis of PSN we obtain that Ateb{t) is in A;^^. By property 
get Ateb{t) — >* t, which gives us directly t G A^^y. 



2.2 



By 
we 



2.2 Simulation proof 

We must relax some constraints on Ateb. We will try to find an expansion 
of t to t' such that t' reduces to a term u and there exists a relation TZ 
with uTZt. The chosen relation must, in addition, enable a simulation of the 
reductions of t by the reduction of u. If it is possible, we can infer strong 
normalization of t from strong normalization of u. 

To proceed with the simulation, we first split the reduction rules of 
the calculus with explicit substitutions into two disjoints sets. The set Ri 
contains rules which are trivially terminating, and R2 contains the others. 
Secondly, we build a relation TZ which satisfies the following properties. 

Property 2.4 (Initialisation) For every typed term t, there exists a term 
uTZt such that Ateb{t) reduces in or more steps to u in the calculus with 
explicit substitutions. 

Property 2.5 (Simulation *) For every term t, if t -^r^ t' then, for every 
uTZt, there exists u' such that u — >* u' and u'lZt' . 

Property 2.6 (Simulation +) For every term t, if t -^R2 t' then, for every 
uTZt, there exists u' such that u u' and u'lZt' . 



We display those properties as diagrams : 
Initialisation Simulation * 



Simulation 



t 

n 

u 



t 

n 

u 



t' 

n 



Ateb(t) 

With this material, we can establish the theorem. 



t 

n 

u 



'R2 



t' 

n 

u' 
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Theorem 2.7 For all typing systems T and T' such that, in the pure cal- 
culus, all typable terms with respect to T are strongly normalizing, if there 
exists a function Ateh from explicit substitution terms to pure terms and a 



relation TZ on explicit substitutions terms satisfying properties 2.1, 2.4 2.5 



and 2.6 then PSN implies SN (with respect to T') 



Proof: We prove it by contradiction. Let t be a typed term with 
explicit substitutions which can be infinitely reduced. By property |2.4| there 
exists a term u such that Ateh{t) u, and Ateb(t) is a pure typed term 
(by property 2.1). By the strong normalization hypothesis of the typed 
pure calculus, we have Ateb{t) G ^sn- By hypothesis of PSN we obtain 
that Ateb{t) is in and it follows that u € A^^. 

we 



By property 2.4 we also have uTZt, and, with properties 2.5 and 2.6 



can build an infinite reduction from u, contradicting the strong normaliza- 
tion of u. ■ 



3 Ax-calculus 

The Ax-calculus [6l [5] is probably the simplest calculus with explicit substi- 
tutions. It only makes the substitution explicit. Since this calculus provides 
no rules to deal with substitutions composition, it preserves strong normal- 
ization. It is for this calculus that the technique has been originate used by 
Herbelin. Therefore, we can without surprises apply the direct proof to get 
strong normalization. 

3.1 Definition 

Terms of the Ax-calculus are given by the following grammar: 

t::= X \ {t t) I Xx.t I t[t/x\ 
Here follows the reduction rules: 

{\x.t)u -^Beta t[u/x] 

{tu)[v/x] -^App {t[v/x]) {u[v/x]) 

{Xx.t)[u/y] ^Lambda Xx.{t[u/y]) 
x[t/x] -^Varl t 
y[t/x] -^Var2 y 

The rule Lambda is applied modulo a-conversion of the bound variable 

X. 

Here follows the typing rules: 
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r\-u:B T,x: Bht: A 
r,x : Ah X : A T h t[u/x] : A 



rht:B^A rhu:B T,x:Bht:A 



(tu): A r h Xx.t : B ^ A 

3.2 Strong normalisation proof 

We define the Ateb function as follows: 

Ateb{x) = X 

Ateb[t u) = Ateb{t) Ateb{u) 

Ateb{\x.t) = \x.Ateb{t) 

Ateb\t[u/x\) = {\x.Ateb{t)) Ateb{u) 

Remark that Ateb performs the exact reverse rewriting of the rule Beta. 
It straightforwardly follows that if t' = Ateb{t) then t' -^*Beta * Ateb{t) 
does not contain any substitutions. 

We check that the Ateb(t) is typable. 

Lemma 3.1 

Tht:A r h Ateb{t) : A 

Proof: By induction on the typing derivation of t. The only non-trivial 
case is that of substitutions. We have t = u[v/x] and 

Thv.B T,x : Bh u: A 

r h u[v/x] : A 

By induction hypothesis, we have T,x : B h Ateb{u) : A and T h 
Ateb{v) : B. We can build the typing derivation of ^te6(i) = Xx.Ateb{u)) Ateb{v) 
as follows 

r,x: B\- Ateb{u) : A 



r h Xx.Ateb{u) : B ^ A Th Ateb{v) : B 
r h {Xx.Ateb{u)) Ateb{v) : A 



We can apply Theorem 2.3 



Corollary 3.2 Since the Ax-calculus enjoys PSN [6] and the A-calculus en- 
joys SN of simply-typed terms [H], we conclude that the Ax-calculus enjoys 
SN of simply-typed terms. 
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4 Az;-calculus 

The Af-calculus |12| |3] is the De Bruijn counterpart of Ax. As Ax, it has no 
composition rules, and therefore satisfies PSN. For this calculus, we must 
use the simulation proof to deal with indices modification operators. We 
succeed to use it and it is, as far as we know, the first proof of SN for a 
simply typed version of Xv (see ^13j ) . 

4.1 Definition 

Terms of Au-calculus are given by the following grammar: 

t::=n\ {t t) \ \t \ t[s\ 
s ::= a/ I ^ (s) | j 

Remark that a substitution is always build from a (possibly empty) list 
of followed by either a t/, or a |. We will then write substitutions in 
a more general form: either i[ft"* {t/)]-, or t['ff* (|)], where ff* (s) denotes 
^(^(...(^(s))...)). 

^ V ' 

i 

Here follows the reduction rules: 

t[u/] 

m) Hs]) 
t 

n 
1 

n[s][T] 
n + 1 

|r| + 1) : 

r h s>r' T' ht: A 
r h t[s] : A 

B,rht: A 
Th Xt: B ^ A 

r h s>B,T 

A,r hit {s)>A,B,r 



{Xt)u 




{t u)[s] 


^App 


{Xt)[s] 


^Lambda 


m] 


^FVar 


n + l[t/] 


-^RVar 




-^FVarLift 


n + l[i[ (s)] 


-^RVarLift 


n[T] 


VarShift 



Here follows the typing rules (where n = 



T,A,Ah n: A 

T\-t: B ^ A Thu: B 
r h (t n) : A 

Tht:A 

Tht/>A,r ^,rhti>r 

4.2 Strong normalisation proof 

We define the Ateb function as follows: 



8 



Ateb{n) 
Ateb{t u) 
Ateb{\t) 

Ateblt[u/]) 



n 



Ateb{t) Ateb{u) 
XAteb{t) 

{XAteb{t)) Ateb{u) 
{XIi{Ateb{t))) Ki{Ateb{u)) 
Ji{Ateb{t)) 



Ateb{t[r {u/)]) 
Ateb{t[f (T)]) 



Example 4.1 For instance, if we suppose that for any tt among t, u, v, w 
we have tt = Ateb{tt), then we get 



Ateb{{t[u/] v[t it it {w/MM it (T))]) = J2mt)u) {{\Is{v))Ks{w))) 



Where Ii{t)), Ki(t) and Ji{t) are functions that we will define in the 
sequel. The intuition about those function is the following: substitutions 
perform some re- indexing of terms upon which they arc applied, those func- 
tions intend to anticipate this re-indexing. To understand the necessity of 
those functions, let us look at some typing derivation. To begin with, we 
take t[fr* {u/)], where A = A, -,^1 {i = |A|) : 



Vru-.B 

r h u/>B,T 

L»i,rht {u/)>Di,B,r 



A-i,..-,^i,rhr~^ {u/)>D,.i,...,DuB,r 

Di, A-1, D,,r hr (u/) > A, A-i, ^1, B,T A,B,r\-t:A 



The problem is to build a term t' from t which would be typeable in the 
environment B,A,T instead of A, T and a term u' from u which would be 
typeable in the environment A,r instead of T. This is exactly the work of 
the functions /j( ) and Ki{ ) respectively. Look now at the typing derivation 



A,T\-t[r {u/)]:A 



We would like to type a term of the form {Xt')u' , that is 



B,A,T'rt' -.A 



A,T \- Xt' : B ^ A A,T h u' : B 

A,r h {xt'y : A 



of t[r (T)], where A = A, {i = |A|) : 
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s,r ht >r 



L»i,B,rh^(T)>L'i,r 



A-i, -, Di, B, r \-r-' (T) > A-i, i^i, r 
A,A-i,-,i^i,^,rhr {^)>D^,Di-l,...,Dl,r A,r\-t:A 

A,B,T\-t[f 

The problem here is to build a term t' from t which would be typeable in 

the environment A,B,T instead of A, F. This is done by the function Ji{). 
We can state the property that should verify those functions. 

Property 4.2 For any term t we have (with i = |A|) : 

• r\-t:A ^ A,ri- Ki{t) : A 

• A,BS'rt:A B, A,r h I,{t) : A 

• A,T\-t:A A,B,r\- Ji{t) : A 

We can then check that the term obtained by the function Ateb is ty- 
peable. 

Lemma 4.3 

T\-t:A r h Ateb{t) : A 
Proof: By induction on the typing derivation of t. 

• t = n and 



r,A,A\-n:A 
We then have Ateb{t) = n and the same typing derivation. 
• t = {u v) and 

Thu: B ^ A Fhv: B 
T\-{uv):A 

By induction hypothesis, we have F h Ateb{u) : B ^ A and F h 
Ateb{v) : B. We can type Ateb{t) = Ateb{u) Ateb{v) as follows 

F h Ateb{u) : B ^ A Th Ateb{v) : B 
F h {Ateb{u) Ateb{v)) : A 
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• t = Xu and 



B,r hu: A 
r\- Xu:B^ A 

By induction hypothesis, we have T,x : B Ateb{u) : A. We can type 
Ateb(t) = XAteb{u) as follows 

B,rh Ateb{u) : A 
r h XAteb{u) : A 

• Cases for t = n['(|* (^^/)] and t = n['(|* (j)] are treated as discussed 
above, using property |4.2[ 

■ 

Of course, for any t, Ateb{t) does not contain any substitutions. 
4.2.1 Functions definitions 

The function Ji{t) performs the re-indexing of t as if a substitution [ff* (|)] 
has been propagated. Since it is applied to terms obtained by the Ateb 
function, only terms without substitutions are concerned. 
Here follows its definition: 



Ji (n) = n + 1 ifn>z 

Ji (n) = n if n < i 

Ji{t u) = Ji{t) Ji{u) 

Ji{Xt) = XJi+i{t) 



The function Ki{t) performs the re- indexing of t as if z substitutions [t] 
have been propagated. We can define it from with the help of the function 
Ji{t) : 

Ki{t) = Jo(Jo(...Jo(t))) 
^ V ' 

i 

When this function is applied to a variable, we obtain Ki{n) = n + i. 
The function Ii{t) prepares a term t to be applied to a substitution that 
has lost its ff. It deals also with substitution-free terms. 
Here follows its definition: 



Ii{n) = n sin>i-|-l 

Ii{n) =1 sin = i-|-l 

Ii{n) = n + 1 s\ n <i 

Ii{t u) = Ii{t) Ii{u) 

Ii{Xt) = XIi+i{t) 
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Indices are transformed as follows: since we have deleted i ff, the index 
i + 1 must become 1. To reflect this change, every index j smaller than i+1 
must become j + 1- The others are let unchanged. 

Here follows several useful properties. 

Property 4.4 For all t, u, i, j, We have 

Ki{t) = Kj (u) Ki+i (t) = Kj+i (u) 

Proof: Indeed, 

Ki{t) = Kj{u) => MKiit)) = MKj{u)) 

■ 

Property 4.5 For all n and i, we have 

Ji+i(n) = KiiJiin-1)) 
Proof: We calculate the values accordingly to n and i. 

• if n > i + 1 then Jj+i(n) = n, Ji{n — 1) = n — 1 and Ki{n — 1) = n. 

• if < i + 1 then Jj_|_i(n) = ri + 1, Jj(n — 1) = n and K\{n) = n + 1. 

■ 

Property 4.6 For all ri > 1 and i, we have 

7i+i(n) = Ji(Ji(n-l)) 
Proof: We calculate the values accordingly to n and i. 

• if n > z + 2 then /j+i(n) = n, /^(n — 1) = n — 1 and Ji(n — 1) = n. 

• if n = z + 2 then = 1, /^(n — 1) = 1 and Ji(l) = 1. 

• if n < z + 2 then /j+i(n) = n + 1, Ii{n — 1) = n and J\{n) = n + 1. 
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Example 4.7 We apply those function to our example, and we obtain 
J2(((At)n) {{Xh{v))Ks{w))) = {{XMt))J2{u)) {{XJ3{h{v)))J2{Ks{w))) 



We can now prove Property |4.2[ 
Proof: 

• A, r K t : A A, r h Ji{t) : A. By induction on t. 

— t = n with n < i: Ji{t) = n. We have 



Ai,^, A2,r hn: A 

with n = |Ai| + 1. We conclude with the following typing deriva- 
tion 

Ai, A, A2,5,r h n : A 
t = n with n > i: Ji{t) = n + 1. We have 



A,ri,yl,r2 ^n:A 



With n = |A| + |ri| + 1. We the get n + 1 = |A| + |ri| + 1 + 1 
and 



A,S,ri, A,r2 ^n:A 

— t = {u v): Ji{t) = {Ji{u) Ji{v)) and we conclude by applying 
twice the induction hypothesis. 

— t = Xu (with A = C ^ D) : Ji{t) = XJi+i{u). We have 

C,A,rhu: D 
A,r \- Xu : C ^ D 

By induction hypothesis, we have C,A,B,T h Ji^i(u) : D and 
we can build the following typing derivation 

C,A,B,rh J,+i{u) : D 
A,B,Th XJi+i{u) -.C^D 

T \- t : A ^ A,rh Ki(t) : A. By induction hypothesis on t. 

— t = n: Ki{n) = Jo( Jo(---<^o('^))) = n + i. We have 

^ V ' 

i 

ri,^,r2 h n : A 

with n = |ri| + 1. Since i = |A|, we get n + i = |ri| + |A| + 1 and 



A,ri,A,r2 ^n + i:A 



13 



— t = {u v): Ki{t) = {Ki{u) Ki{v)) and we conclude by applying 
twice the induction hypothesis. 

— t = \u (with A = C ^ D): Ki{t) = Jq{Jq{...Jq{\u))) = 

AJi(Ji(...Ji(tx))). 
^ V ' 

i 

We get 

C,r\-u:D 
T\- Xu:C^D 

By the item above, we have 

C,T\-u:D 
C,Ei,T\- Ji{u) -.D 
C,E2,Ei,T\- Ji{Ji{u)):D 

C,Ei,...,Ei,T\- JiiJi{....h{u))) 

^ V ' 

i 

with A = Ei,...,Ei. We can then build the following typing 
derivation 

C,A,T\-Ji{J^i...Jiiu))):D 

^ V ' 

i 

A,T\- Ki{Xu) -.C^D 
• A,B,r\-t: A =^ B,A,r\- Ii{t) : A. By induction on t. 

— t = n with n> i + Ii{t) = n. We have 

A, B,ri,A,T2\- n: A 

with n= |A| + l + |ri| + l. We conclude with the following typing 
derivation 

B, A,Ti,A,T2 hn:A 

— t = n with n = i + Ii{t) = 1. We have 



A,B,r \-n:B 



14 



with n = i + l = |A| + l. We conclude with the following typing 
derivation 



B,A,rhl:A 
t = n with n < i: Ii{t) = n + 1. We have 



Ai,A,A2,B,T\-n: A 
with n = |Ai| + 1. We then get n + 1 = |Ai| + 1 + 1 and 

B,Ai,A,A2,r\-n: A 

t = {u v) : liit) = {Ii{u) Ii{v)) and we conclude by applying 
twice the induction hypothesis. 

t = \u (with A = C ^ D) : Ii{t) = \Ii+i{u). We have 

C,A,B,r\- u: D 
A,B,T\- Xu:C ^ D 

By induction hypothesis, we have C, A,r h : D and we 

can build the following typing derivation 

g,A,rh/,+i(^) : D 
A,rhA/i+i(u) -.C^D 



4.2.2 Definition of the relation < 

The function Ateb erases the substitutions [ff* (T)] and we will not be able 
to recover them by reducing the term obtained, as is shown for the following 
example. 

Example 4.8 We continue with our example, we get 

{{XMt))J2{u)) {{\Mh{v)))J2{Ks{w))) 

— ^ B — ^ B 

J3{t)[J2{u)/] J3{I3{V))[J2{K3{W))/] 

We must use the proof by simulation. To perform this simulation, we 
need a new function t which performs the re-indexing of the erased substi- 
tutions. 
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t u = t u 

Xt = Xt 

W] = t[u/] 

t[r ju/) ] = wmm/] 
t[rm = m 

This function will deal with terms that might contain substitutions. We 
need then to extend their definition. By the way, since the function t removes 
from t the and |, we will restrain our-self to the simple substitution case: 

Ji{t[u/]) = J^+i{t)[Ji{u)/] 
h{t[u/]) = h+i{t)[h{u)/] 

The function ~ commute with the other function, as stated in the follow- 
ing lemmas. 

Lemma 4.9 for all i and t (without and |) we have 



Ji{t) = Ji{t) 
Proof: By induction on t. 

• If t = n, then Jj(t) = n' , n' = n' on one side, and n = n on the other 
side. 

• In all the other cases, we conclude by induction hypothesis. 



Lemma 4.10 For all i and t (without and |) we have 



Ii{t) = h{t) 
Proof: By induction on t. 

• If t = 71, then Ii{t) = n' , n' = n' on one side, and n = n on the other 
side. 

• In all the other cases, we conclude by induction hypothesis. 



Lemma 4.11 For all i and t (without and |) we have 



Ki{t) = K,{t) 



Proof: This is a direct consequence of Lemma 4.9 
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We can check that this function is correct w.r.t. our example. 
Example 4.12 Here is the final term obtain for our example: 



Ht)[J2{u)/]Jz{h{v))[J2{K^{w))/\ 

Here is the original term: 



{t[u/] v[i^ (W)))])[^(^ (T))] 

J2{t[u/] h{v)[K^{w)/]) 

We also need an order relation on the skeleton of terms. We want that 
t ^ if M and only if t contains [t] and f|- only where i! contains them also. 
We formalize this definition as follows: 

for all n and m n ^ m 

t^t' and u^u' {t u) ^ {f u') 

t4t' =^ Xt4 At' 

t^t' =^ t'[\] 

t^i/smds^s' ^ t[s] ^ t'[s'] 

t^t" ^ t/ 4 t'/ 

Example 4.13 We have t[it (*'/)] ^ t[m {f /)))]■ 

Prom this relation and the function t, we can build a relation to perform 
our simulation. We note this relation < and we define it as follows: 

t < t' t = ? and t 4 t' 

Remark that we always have t<t. We can now initialize our simulation. 

Lemma 4.14 (Initialization) For alH, there exists n such that j4te6(t) — 
u and u<t. 

Proof: By induction on t. 

• If t = n, then Ateb{t) = n and it is enough to take u = n. 
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• If t = ti t2, then Ateb{t) = Ateb{ti) Ateb{t2)- By induction hypothesis, 
there exists ui and U2 such that Ateb{ti) — >^ ui and Ateb{t2) U2 
with ui < ti and U2 < ^2- We take u = ui U2. 

• li t = At', then we proceed as above using the induction hypothesis 
for t'. 

• Ut = f [fr' (T)], then Ateb{t) = Ji{Ateb{t')). By induction hypothesis, 
there exists u' such that Ateb{t') u' and u' <t' . We take u = Ji{u') 
and we check that u<t, that \su = t and u =4 t- This last condition is 
trivial sinc e u' =4 t' ■ We calculate u = Ji(u'), which is equal to Ji{u') 



by Lemma 4.9 t = t'[ft~* (t)] = Ji{t'), and we conclude since u' = t'. 



If t = ti[f (t2/)], then Ateb{t) = {XIi{Ateb{h)))Ki{Ateb{t2)). By 
induction hypothesis, there exists ui and U2 such that Ateb{ti) -^*^ 
ui and Ateb{t2) U2 with ui < ti and U2 < t2- We take u' = 
{\Ii{ui)) Ki{u2) for which it is clear that Ateb{t) -^*^ u' . We have 
u' -^B Ii{ui)[Ki(u2) /], we take this last term as u and we check that 
u < t, that is n = t and u ^ t. This last condition is trivial since 
ui ^ ti and U2 ^ ^2- We calculat e u = Ii (u^)\ Ki(u9) /], which is 



equal to Ii{w)[Ki{u^) /] by Lemmas 4.10 and 4.11 t = ti[fr* (12/)] 



Ii{ti)[Ki{t2)/], and we conclude since ui = ti and U2 = t2- 



4.2.3 Simulation Lemmas 

We need several lemmas in order to prove the simulation of reductions of At;. 
We separate the reduction rules in two subset: we call Ri the set containing 
the rule B alone and R2 the set containing all the other rules. Of course, 
R2 is strongly normalizing (see pi). We want to establish the following 
diagrams: 

t -^B t' t 

V V V V 

u u' u v! 

We look first at the simulation of -B, then at that of the other. 

Lemma 4.15 For all t — >b t', for all u < t there exists such that u ^b u' 
and u' <t' . 

t -^b t' 
V V 
u -^b u' 
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Proof: Let t = {Xv)'w and {\v)w -^b v[w/\, every terms u<t are of the 
form (Xv')w' with v' < v and w' < w, we can the reduce {\v')w' — >b v'[w' /] 
and the conclusion foUows immediately. ■ 



Lemma 4.16 For all t -^r^ t', for all 'u<t there exists u' such that u — u' 
and u' <t'. 



Proof: By case on the rule of R2. 

• FVar: l[f/] — v. Every terms u < Ifi;/] are of the form l[v' /] with 
v' <V and l[v' /] -^FVar v'. 

• RVar: n + l[v/] — > n. Every terms u < n + l[v/] are of the form 
n + l[v' /] with v' <v and n + l[vV] ~*'-Rl/ar 'T- 

• App: t = {v w)[s] — > {v[s]) {w[s]) = t'. We proceed by case on the 
form ofs. 

- if s =f^* (I) then the terms u < {v w)[i['^ (j)] might have two 
distinct forms: 



* either u = {y' w') [ff-^ (j)] with v' <v,w'<w,j<i and u = t, 



V V 



* / 



that is: 



K «^')[t^ (T)] 



{v w)[r (T)] 



Ji{v w) 



Jj{v') Jj{w') = Ji{v) Ji{w) 



which implies Jj{v') = Ji{v) and Jj{w') = Ji{w). In that 
case, [v' (T ) ] -^App {v'W (T)]) i^'W (T)]) and we 

can easily conclude with {v'[^^ (j)]) {w'[^^ {])]) < (w[fr* (t 

)]) (Hr (T)]). 



* either u = {v' w') with v' <v,w'< w, and u = t, that is: 



v' w' 



{v w)[r (T)] 



v' w' = 



Ji{v w) 



v' w' 



Ji{v) Ji{w) 
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which imphes v' = Ji{v) and w' = Ji{w). In that case, {v' w') 
can't be reduce and we can conclude with {v' w') < ('u['f|'* (T 

)]) {y^ir (!)])• 

— if s =11* (r/) then all terms u < {v w)[il^ i^/)] ^re of the form 
{v' w')[i[^ W/)] with v' <v, w' < w, r' < r, j < i and u = t, that 
is: 

{v' w')[p {r'/)] = {v w)[i[' (r/)] 
Ij{^W)[Kj{?)/] = Ii{vw)[Ki{f)/] 

which implies Jj{v') = Ji(v), Jj{w') = Ji(w) and Kj{r') = Ki(f). 
In that case, {v' w')[r {r' /)] -^App {v'[r {r' /)]) {w'[r (r'/)]) 
and we can easily conclude with {v'[il^ ('"V)]) (^'[tT"' ('^[ft* 
(r/)]) {w[r (r/)]). 

• Lambda: t = {Xv)[s] — A('i;[f|- (s)]) = t'. We proceed by case on the 
form of s. 

— if s =1^' (t) then the terms 'u<(Av)[f|-* (t)] might have two distinct 
forms: 

* either u = {Xv')[i[^ (j)] with v' <v, j < i and u = t, that is : 

Jj{W) = Ji(Xv) 

XJj+i{v') = XJi+i{v) 

which implies Jj+i(f') = Ji^i{v). In that case, (A?;')[ft-^ (t 
)] -^Lambda A('y'[fr^+^ (T)]) and we can easily conclude with 
X{v'[r+^ (T)]) < mf+' (!)])• 

* either u = Xv' with v' <v, and = i that is: 

A^ = i^vWW] 
Xv' = Ji(Xv) 

Xv' = XJi+i{v) 

which implies v' = Ji+i(v). In that case, Xv' can't be reduced 
and we can conclude with Xv' < A(u[t|-*+^ (T)]). 
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~ if s ='(1* (r/) then all the terms u < (Aw)['(|* (''/)] of the form 
(Aw')[ff'' (r'/)] with v' < V, r < r', j < i and u = t, that is: 

WWV/Y] = i^v)[r (r/)] 

/,(A^)[K,p)/] = Ii(A^)[i^,(r)/] 

A/,+i(^)[i^,P)/] = A/i+i(^7)[i^,(r)/] 

which implies Jj-^-i{v') = Ji+i(tJ) and Kj{r') = Ki(r). In that 
case, iXv')[it^ (r'/)] ^Lambda A(i;'[lt-^'+^ (^^7)]) and we can easily 
conclude with X{v'[il^+^ (r' /)]) < A(u[lt*+^ (r/)]) due to Prop- 
erty 

• VarShift: n[\] n+l. The only two terms M<n[|] are n[t] and n+l, 
we can then conclude with possibly a reduction step using VarShift. 

• FVarLift: t = l[f[ (s)] -^FVarLift 1 = We proceed by case on the 
form of s. 

— if s =f|~* (t) then the terms n < l['ff (ff* (T))] might have two 
distinct forms: 

* either = {]))] with j <i and u = t. We then have 
lifr (T))] -^FVarLift 1 and we easily conclude. 

* either u = 1 with u = t and we easily conclude. 

— if s =lt' (r/) then all the terms u < l[f^ (ff* ('^Z))] are of the 
form (f^-^ (''V))] with r' < r, j < i and u = t. We then have 

(ft'' W/))] -^FVarLift 1 and we can conclude. 

• RVarLift: t = n + (s)] ''^[■s][T] = t' . We proceed by case on the 
form of s. 

— if s ='(1* (t) then the terms u < n + (f^* (|))] might have two 
distinct forms: 

* either u = n'[^^ (|)] with j < i + 1 and u = t, that is: 

n' + l[1t iP (T))] = n + l[^(r (T))] 

Jj+i(n') = Jj+i(n+l) 

We deduce from this equality that n' can't be smaller than 
n and that it must then be grater than 1. In that case, 
n'[it iP (T))] -^RVarUft u' - l[V {])][]] and we must check 
that 
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n[r (!)][!] 
Ki{Ji{n)) 



n'-l[V{])m 
Ki{Jj{n' -I)) 



By Property 4.5 we have Ki{Ji{n)) = Jj+i(n+l) and Ki{Jj{n' - 
1)) = Jj+i(n'), and we can conclude with n' — (T)][T 
\<n[r (!)][!]. 
* either u = n', and u = t, that is: 



n' 



n + l[t(t^ (T))] 



n' = Jj+i(n + l) 
In that case, u can't be reduced and we must check that 



"[r (!)][!] = n' 

Ki{Ji{n)) = n' 
We conclude with n' < n[-(|* (T)][T] due to Property 



4.5 



— if s (r/) then all the terms u <n + (ff* (r/))] are of the 
form n'['^^ /)] with r < r', j < i and u = i, that is: 



n + l[^ it (r/))] 
/,+i(n + l)[i^,+i(f)/] 



which implies Ij{n') = + 1) and Kj{r') = Kij^i{r). There 

are two distinct cases according to the value of j. 

* J = 0: then we have Io{n') = n' = /,;-|-i(n + 1), -K'o(r') = r' = 
Ki^i(f) and we must check that 



n'[r' /] 



n[r {r /)][]] 
Ki[h[n)[K,[r)/\) 
Uh[n)[K,[T)/\) 
Ji(/,(n))[Jo(K.(r))/] 

Ji(/,(n))[Ki+i(r)/] = n'p] 

We can conclude with Ji(/j(n)) = /j+i(n + l)n' due to Prop- 
erty |4.6 
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* j > 0: n'[i\^ (r'/)] reduces to n'[i\^-^ W /)][]] and we must 
check that 



n[r {r/m] = n'[p-^ {r' /)][]] 

i^i(/,(n)[K,(r)/]) Ki(/,„i(n')[^,-i(r')/]) 
Mh{n)[Ur)/]) Jo{Ij-i{n')[K,^,{r')/]) 
Uh{n))[UK,{r))/] Ji(/,-_i(n'))[Jo(i^,^i(r'))/] 

J,{h{n))[Ki^,{r)/] = Ji(/,_i(n'))[K,(r')/] 



and we directly conclude with the help of Property 4.6 



4.2.4 Simulation 



The function Ateh and the relation < satisfy the hypothesis of Theorem 2.7 
We can then apply it and get the desired conclusion. 

Corollary 4.17 Since Af -calculus enjoys PSN [3j and simply-typed A-calculus 
enjoys SN [11] (which is easily extended to A-calculus with De Bruijn in- 
dices), we have that simply- typed Af -calculus enjoys SN. 

5 Au,s„-calculus 

In [8] a named version of \yjs was proposed. In current work, we developed 
a new version of this calculus : X-wsn- We already have a SN proof for 
this calculus, almost similar to the original one, and this technique can be 
applied, using the direct proof. We cannot conclude to SN by this way, since 
PSN has not yet been shown (see [13]). 

5.1 Definition 

Terms of Ai„s„-calculus are given by the following grammar: 

t::=x\ {t t) I Xx.t I t[x,t,r,r] I Tt 

where T is a set of variable. A version of the reduction rules is presented 
Fig.|2] 

Typing rules are given Fig. [3} 
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(b) 




(A(Ax.t))(r«) 




t[a;, 11, r, A] 


(a) 




(i ^x)[x,i;,r,A] 




(t[x,x;,r,A] n[a;,^;,r,A]) 


(ei) 




(At)[a;,M,r, A] 




(Au(A\{x}))t 


("i) 




y[x,i,r,A] 




Ay 


(no) 




a:;[x,t,r, A] 




Vt 


(ci) 




n,A,$][x,i;,r,A] 










n[x, t-, r \ A, A u (A \ r)], A n r, A u \ {x})] 


(C2) 




u,A,$][x,i;,r,A] 




t[x,?;,(r\^>)uM,Au(ci>\r)] 










[y,«[x,i;,r\A,Au(A\r)],Anr 


(C3) 




n,A,$][x,i;,r,A] 




t[y,^x,(A\{x})UA,($\{x})UA] 


(/) 




(Ayi)[x,u,r,A] 




Ai/.t[.T,n,ru{y},A] 


(e2) 




(Ai)[x,«,r,A] 




(r n k)t\x, u, r \ A, A u (A \ r)] 


(d) 




rAt 


rsj 


(r u A)t 


(0) 




u 




t 


(C4) 




M,A,^>][x,t;,r, A] 







t\x, V, (r \ u {y}, A u \ r)][2/, A u (A \ {x}),r n $] 

Figure 2: Reduction rules of the Atu5„-calculus 

5.2 Strong Normalization proof 

We define the Ateb function as follows: 

Ateb{x) = x 

Ateb{t u) = Ateb{t) Ateb{u) 

Ateb{Xx.t) = Xx.Ateb{t) 

Ateblrt) = rAteb{t) 

Ateb{t[x,u,T,A]) = {A{Xx.Ateb{t))) {TAteb{u)) 

Remark 5.1 The Ateb function sends A^s„- terms to a A-calculus with ex- 
plicit weakening. 

As for the Ax-calculus, the Ateb function performs exactly the reverse 
reduction of the rule b. It is then obvious that if t' = Ateb{t) then t' — >^ t 
and that Ateb{t) does not contain any substitution. We must check that the 
term we get is typeable. 

Lemma 5.2 

T\-t:A ^ r h Ateb{t) : A 

Proof: By induction on the typing derivation of t. The only interesting 
case is that of substitution. We have t = u[x, v, T, A] and 



X G A\r 

X 7^ y or y G r 

X G $ \ r and x A ' 



X G $ \ r and x G A ' 

X ^ A\r 

X G A \ r and x $ ' 
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r\Aht: A Act 

Ax T^, — ^-7 — Weak 



X : Ah X : A T h At : A 

Tht-.BAT'ru-.B. T,x:Aht:B 
Th{tu):A ThXx.t:BA 

n\rhM:A u\A,x:A\-t:B (ruA)cn 



n h t[x,u,T,A] : B 



Sub 



Figure 3: Typing rules of the A^sri-calculus 



U\rhv:B n\ A,x : B h u : A 
n h u[x,v,r,A] : A 

By induction hypothesis, we have Il\A,x:Bh Ateb(u) : A and 11 \ F h 
Ateb{v) : B. We can type Ateb{t) = {A{Xx.Ateb{u))) TAteb{v) as fohows 

U\A,x: Bh Ateb{u) : A 



U\A\-\x.Ateb{u):B^A n\T h Ateb{v) : B 
n h A{Xx.Ateb{u)) : B ^ A nhrAteb{v) : B 
n h {A{Xx.Ateb{u))) rAteb{v) : A 



We can directly apply Theorem 2.3 Nevertheless, we cannot get any 



conclusion since PSN has not yet been shown for this calculus. 



6 A^ys-calculus 

We deal here with the calculus with De Bruijn indices, and difficulties will 
arise due to them. More precisely, we won't be able to deal with the typing 
environment as we did for the Au-calculus. The presence of explicit weak- 
ening forbid us to rearrange the typing environment as far as we would do. 
Here follows the reduction rules (Fig. |4]) and typing rules of the Ai„s-calculus 
(Fig. [5]) where |F| = i and | A| = j. 

At the time of writing, we don't know if it would be possible to apply 
our technique to this calculus. 



7 Acr-calculus 

The Acr-calculus [1^ is a calculus with De Bruijn indices and multiple substi- 
tutions, adding difficulties over those already there for the Af-calculus. Our 
application here is only an exercise since this calculus does not enjoy PSN. 
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bi 

62 

/ 
a 

ei 

ni 
n2 

n3 
ci 

C2 

d 



(Xtu) 
{{k)Xtu) 
[i/u,j]Xt 

[i/u,j]{t v) 
[i/u,j]{k)t 
[i/u,j]{k)t 
[i/u,j]k 
[i/u,j]i 
[i/u,j]k 
[i/u,j][k/v,l]t 
[i/u,j][k/v,l]t 



[0/u, 0]t 
[0/u, k]t 
X[i + l/u,j]t 

ii[i/u,j]t) {[i/u,j]v)) 

{j + k- l)t 

{k)[i - k/u,j]t 
k 

{i)u 

j + k -I 

[k/[i - k/u,j]v,j + 1 - 
[k/[i-k/u,j]v,l][i 
{i + j)t 



si i < k 
si i > k 
si i > k 

si i < k 

sik<i<k + l 



l]t 

l + l/u,j]t sii>k + l 



B,T\-t:C 



Lambda 



Figure 4: Reduction rules 
Axiom 

T\-t:BA T\-u:B 



T,A,A\-i:A 



r\- Xt:BC 

A,nhu:A r,A,Uht:B 
r,A,U\-[i/u,j]t:B 



Subst 



r h (tu) : A 
A\-t: B 



App 



r,A h {i)t : B 



Weak 



Figure 5: Typing rules 



Nevertheless, it reduces the question of SN to that of PSN, i.e. if PSN is 
shown, here already follows a correct proof of SN. 

7.1 Definition 

Terms of the Acr-calculus are given by the following grammar: 

t::=l\ {t t) \ Xt\ t[s] 
s ..= id \ t I f • s I s o s 

As usual, we will add infinitely many integer constants 2,3,...,n with 
the convention: n = l[t]...[t]. As usually, we will consider that any term n 

n— 1 

does not contain substitutions. 

Here follows the reduction rules: 
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{Xt)u 




t[u ■ id] 


(t u)[s] 


^ App 


m) iu[s]) 


{Xt)[s] 


^Lambda 


X{t[l-{so])]) 


l[id\ 


-^Varld 


1 


l[t-s] 


^VarCons 


t 


t[s][s'] 


-^Clos 


t[s s'] 


ido s 




s 


1 Old 


-^Shiftld 


T 


T °{t-s) 


^ShiftCons 


s 


{t-s)o s' 


-^Map 


t[s'] ■ (s s') 


{Sl o S2) S3 


^ Ass 


Si (S2 S3) 



Here follows the typing rules: 



r h s > r' T' ht: A 



A,Thl:A Tht[s]:A 
Tht-.B^A Thu:B B,rh t : A 



(tu):A Th Xt: B ^ A 



rhid>r yi,rhtor 
Tht: A r h s r' r h s' r" r" h s > r' 



Tht-s>A,T' r h s o s' > r 

We can give a derived rule for indices n > 1, (with n = |r| + 1 and 
r = Ci, ...,Cn-i) ■ 



C„_i,^, A ht i>^,A A,Ahl:A 
T,A,Ah^>C2,...,Cn-i,A,A C2,...,Cn-i,A,Ah ![]]...[]]: A 

n-2 



T,A,Ahn:A F , A, A h 1[\]...[\] : A 

n— 1 

The substitution back-pushing and some of the functions defined below 
were strongly inspired by [9]. 

7.2 Towards strong normalization 



We proceed similarly to Section 4.2 
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We define the Ateb function as follows: 



Ateb{n) 
Ateb{t u) 
Ateb{Xt) 
Ateb{t[id\) 
Ateb{t[^]) 



Ateb{t) Ateb{u) 

XAteb{t) 

Ateb{t) 

Ul{Ateb{t)) 

Ateb{t[s\[s']) 

Ateb{{\t)[s\) Ateb{t') 



n 



Ateb{t[s o s']) 
Ateb{t[t' ■ s]) 



Where (t) is a function that we will define below. The goal of this func- 
tion is to anticipate the propagation of the substitution [|] and to perform 
early re-indexing. To understand its necessity, let us look at the derivation 



Example 7.1 For instance, if we suppose that for any tt among t, u, v we 
have tt = Ateb{tt), then we get 



Ateb{{t[u ■ id] v[l-l- 5- t])[T]) = U^{{{Xt)u) {{{U^{XXXv)b)l)l)) 



The calculus UQ{t) will then increase by 1 all the free variables of t in 
order to enable the typing of it in the environment B,T. We can therefore 
state the property that this function must verify. 

Property 7.2 For any term t without substitutions we have: T \- t : A ^ 
B,T\-U^{t) : A. 

It is obvious that for any t, Ateb{t) does not contain any substitutions. 
We can check that Ateb{t) is typeable. 

Lemma 7.3 



oft[T]. 



s,ri-ti>r r\-t:A 
5,rhi[T] -.A 



Tht-.A ^ r h Ateb{t) : A 



Proof: By induction on t. 



• t = 1 and 



A, A hi -.A 



We then have Ateb{t) = 1 and the same typing derivation. 
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t = {u v) and 



Th {uv):A 

By induction hypothesis, we have T h Ateb(u) : B ^ A and T H 
Ateb{v) : B. We can type Ateb{t) = Ateb{u) Ateb{v) as follows 

r h ^te6(n) : 5 ^ ^ T h Ate6(i;) : B 
r h (^teKw) Ateb{v)) : A 

t = \u and 



B,T hu: A 
Th Xu: B ^ A 

By induction hypothesis, we have B,T \- Ateb{u) : A. We can type 
Ateb{t) = XAteb{u) as follows 



B,Th Ateb{u) : yl 
r h AAte6(?x) : S ^ ^ 



t = u[id] and 



r h n[i(i] : ^ 
We directly conclude by induction hypothesis, 
t = «[!] and 

5,ri-ti>r r\-u:A 

B,r\-u[[] : A 



We conclude by induction hypothesis and by Property 7.2 
t = u[v ■ s] and 

rH.s>r^ Thv.B 

Thvs>B,T' B,T'^u:A 
Thu[vs]: A 

By induction hypothesis, we have T h Ateb{(Xu)[s]) : B ^ A and 
r h Ateb{v) : B. We conclude with the following typing derivation 

T h Ateb{{Xu)[s]) : B ^ A T h Ateb{v) : B 
r h Ateb{{Xu)[s]) Ateb{v) : A 
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t = u[s o s'], and we conclude directly by induction hypothesis. 



7.2.1 Function definition 

The function U-^ (t) performs a re-indexing of the term t as if we had prop- 
agated a substitution [|] . Since it deals only with terms obtained from the 
Ateb function, we might consider only substitution-free terms. However, we 
will need later to use it with terms with substitutions, but without |. When 
it is applied to a substitution it returns a pair composed by an integer and 
a substitution, else it returns a term. 
Here follows its complete definition: 





= n + j 


Ufin) 


= n 


Ul{t u) 




UliXt) 


= >^Ui) 


uim) 


= let i',s' =Ul{s) 






uiiid) 


= i, id 


Ulit-s) 


= let =Z^/(s) 




in i' + lMi{t) ■ s' 


Ul{si O S2) 


= let i'2,s'2 =Z^/(S2) 




and i'l , s'l = Ui (si) 




in i[ , s'l s'2 



The modification of the index i (and the value of the integer part of the 
pair) reflects the number of • we got through, each of them acting like a A. 
Here follows the proof of Property |7.2[ 

Proof: We have to proof that, for any t substitution- free, T h t : 
^4 ^ i?, r K Z//g (t) : A. Actually we prove a more general result, namely 
T,A\-t: A^T,B,Ah Ul{t) : A where i = \T\. We proceed by induction 
on t. 

• t = n with n < i: hll{t) = n. We have 



ri,^,r2,AH n : A 
with n = \Ti\ + 1. We conclude with the following typing derivation 



Ti, A,r2,B,A K n : A 
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• t = n with n > i : Ul{t) = n + 1. On a 



r,Ai,^,A2 \-n:A 



With n = |r| + |Ai| + 1. We conclude with the following typing 
derivation 



r,S,Ai,^A2 \-n+l:A 



• t = {u v) : U}{t) = {Ul{u) Ul{v)). We conclude with twice the 
induction hypothesis. 

• t = \u (with A = C^D):Ul{t) = XUl+i{u). We have 

T,A\- Xu:C ^ D 

By induction hypothesis, wc have C,T,B,A h L(l_^i{u) : D, and we 
conclude with the following typing derivation 

T,B,A\- AW/+i(u) -.C^D 

u 

Here follows a property used below. 
Property 7.4 For all t, i, j, I, we have 

ui(ui{t)) = ut'{t) 

Proof: By easy induction on t. m 

Example 7.5 We can apply this function to our example, giving 

U^imu) {X{{X{U'o{Xv)w))l))l) = ml{t))Ul{u)) {{{{XXXUl{v))6)2)2) 

7.2.2 Definition of the relation < 

The function Ateb applied to a term t returns a new term t' that usually 
cannot be reduce to t. Indeed, the | disappears and the information they 
carried is already propagated in t' . The reducts of t' won't have those terms 
as it is shown in the following example. 
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Example 7.6 With our last example, we have 



{ {XUHtMju) ) {{{{XXXUi{v))6)2)2) 
* 

Ul{t)[U^{u) ■ id] W|(v)[2 • 2 • 6 • id] 

Remark that the re-indexing of the | in the original term has correctly 
been propagated, the substitution [1 • 1 • 5- j] has become [2 • 2 • 6 • zd]. 

Wc now have to simulate the reduction of the initial term by that of 
the obtained term. We start naively with the following definition which will 
appear to be inadequate. We will then present an adequate solution. 

To perform the simulation, we define a new function t that flattens all 
the re-indexing required in a term t and deletes the lonely substitutions [id] . 

n = n 

t u = t u 

\t = Xi 

t[s] = let n,s' = s in 

U^{t)[s'] if 

Ul^it) else 

I = 1,0 
id =0,0 
t ■ s = let n, s' = s in 

n,t[s'] if s'/0 

n,t ■ id else 
si o S2 = let ni ,s[ = si 

and 7X2, s'2 = 82 in 

ni 722,0 if s[ = s'2 = 

ni + 7i2,^^o'(s'i) if *2 = 

ni + 7i2, s'2 if s'l = 

ni -I- n2,UQ^{s'i) o s'2 else 

The function ~ commutes with U^{t), as stated in the following lemma. 
Lemma 7.7 For all i, j and t (without j) we have 



Ufit) = ulit) 

Proof: By induction on t. 

• If t = 71, then Ul{t) = 7i', n' = n' and n = n. 

• All the remaining cases are easily proved by induction hypothesis. 
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Example 7.8 Look at the final example term: 



Ul{t)[U^{u) ■ id] Ul{v)[2 • 2 • 6 • id] 

Ul{t)[U^{u) ■ id] W|(^;)[2 • 2 • 6 • id] 
And the original term: 

{t[u-id] v[i-i-b- T])[T] 
Ul{U^{t)[u ■ id] U^{v)[l • 1 • 5 • id]) 

Ul{t)[U^{u) ■ id] W|(i7)[2 • 2 • 6 • id] 

Wc need an order relation on the skeleton of terms. We want that t =4 
if and only if t' does contain | and [id] only at the same place t does. More 
formally, it can be defined as follows: 



pour tout n and m 




n ^ m 


t ^t' and u ^ u' 




{t u) ^ {f u' 


t ^ t' 




Xt ^ \t' 


t ^ t' 


=^ 


t ^ m 


t ^ t' 


=^ 


t ^ t'[id] 


t ^t' and s ^ s' 


=^ 


t[s] ^ t'[s'] 












id =<; id 






id 


t ^ t' and s ^ s' 


=^ 


t - s 4t' ■ s' 


s ^ s' 


=^ 


s ^ s' id 


s 4 s' 


=^ 


s ^ ido s' 


s ^ s' 


^ 


s ^ s'o 1 


s 4 s' 




s =4l os' 


Si =4 s'l and S2 =4 S2 


=^ 


Sl S2 =^ s'l 



Example 7.9 We have • id] 4 t[id][-t/- T]- 

With this relation and the function t, we can define a relation to perform 
our simulation. We denote this relation < and we define it as follows: 

t < t' t = F and t ^ i' 

We remark that we always have t <t. 

However, we cannot go further because this relation will not be adequate 
to perform the simulation. Indeed, a problem arise to simulate the rule Abs: 
{Xt)[s] A(i[l • (so I)]. If s = id (or |), then a term u < {Xt)[id] can be Xt 
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which don't verify Xt < A(t[l • (so |)] . We would hke to extend our relation to 
this kind of id (and similarly for |). We start over again with a new relation 
< that take this into account. 



To solve the problem, we choose to identify terms having the same a- 
normal form. We call a the set of rules without B. The a- normal form of 
a term is given by the transitive closure of a. We now that such a normal 
form exists since a is strongly normalizing (see pLj). We denote a{t) the 
(T-normal form of t. 

We first define a notion of redexahility of terms. The idea is to find all 
the "bad" terms, that is those that can give rise to i?-redices. 

Definition 7.10 We say that a term is potentially redexable (denoted PR{t)) 
if it contains application or A at some node. 

We define then the relation ^ that will ensure that \i u ^ t then u has 
the same redexability than t. 



pour tout n and m 


n 4 m 


t 4 t' and u 4 u' - 


(tu) 4 {t' u') 


t 4t' 


\t4 Xt' 


t=4t' 


t 4 t'[s] 


t 4 t' and s =4 s' - 


t[s] 4 t'[s'] 








id 4 id 




id 4 s 


t =4 t' and s =4 s' =^ 


t- s 4t' -s' 


s 4 s' ^ 


s =4 s' Sl 


s 4 s' ^ 


s 4 Si s' 


L ^ s[ and S2 ^ s'2 =^ 


> Si S2 4 s'l s'2 



if -^PR{s) 



if ^PR{s) 

if -^PR{si) 
if -^PR{si) 



Example 7.11 We have t[t' • id] 4 t[l • id][t'- ]]. 
We define the relation < as follows. 



Definition 7.12 For all t and u, u <t <J=^ u 4 t and a{t) = a{u). 
Remark that we always have t < t. 

Here follows several lemmas that will be used to prove the initialization 
lemma. The first one says that the c-normal form does not change when 
one deletes a substitution [id]. 

Lemma 7.13 For all i, we have a{t) = a{t[id]). 

Proof: See [1]. ■ 
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Lemma 7.14 For all t, we have a{UQ{t)) = UQ{a{t)). 

Proof: Since the application of Uq{) changes only the values of free 
variable, its application is orthogonal to the reduction of substitutions that 
changes only the values of bound variables. ■ 

The following lemma says that the cr- normal form of a term is the 

same as that of {t) . 

Lemma 7.15 For all t, we have a{UQ{t)) = o"(i[t]). 

Proof: We prove a more general result. Let "\\ (s) = 1 • (so |), we prove 
that for all t and i, we have a(lll(t)) = a{t[f{^)]). Since a{t[f {^)]) = 
(T((T(i)[ft*(t)]), it is enough to prove it for t in a-normal form. We proceed 
by induction on it. 

• t = u v: then a{{u v)[f {])]) = (T{{u[t (1)]) cr{v[il' {1)]), and we 
conclude by induction hypothesis. 

• t = Xu: then a{{Xu)[t (W = K<^Ht^HW) and a{Ul{\u)) = 
\{ij{Ul^i{v))). We conclude by induction hypothesis. 

• t = 1: there are two cases, 

- either i = 0, then (t{UI{1)) = a{2) and C7(1[T]) = (t{2). 

- or i > 0, then a{Ul{l)) = a{l) = 1 and o-(l[^^(T)]) = a{l[l-{t-^ 

(T)° T)]) =VarCons O-(l) = 1- 

• t = n> 1: there are two cases, 

- either i < n, then a{Ul{n)) = a{n + 1) = (7(l[t]...[T]) =cios 

n 

1[| 0...0 I] and 



'^Hnm) = <^innjM%m =cios ^(i^o^o ^d)]) 

n-1 n-1 

We prove that this last term is equal to ![ ! o.^.o | ] by induction 

n 

on i: 

* i = Q: c7(l[To^^^^o t]) = l[to^^^^ 

n— 1 n 

* z > 0: 

c7(l[To^o r(T)]) = a(l[To^o(l.(r-^(T)o T))]) = a(l[T^^o ^-i(t)o j]) 
n— 1 n— 1 n— 2 
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By rule CZos, we have cr(l[T 0...0 |o fr*-^(T)o t]) = a{l[\ 0...0 |o f 



(!)][!]) = a(a(l[T 0...0 to r-MT)])[T])- Since i < n, then 



n-2 



i — 1 < n — 1 and we can apply the induction hypothesis 
on i, giving us a(a(l[To^o r-HT)])[T]) = c7(l[To^[T 

n— 2 n— 1 

]) =cio. i[T 0...0 T]. 



either z > n, then (7(W/(n)) = a{n) = a{l[\]...[\]) =cios 1[ T Q-^-Q T ] 

n— 1 n— 1 

and 



n-l n-1 

We prove that this last term is equal to 1 [ J o.„o by induction 

n-l 

on i: 

* z = 0: impossible since z > n > 1. 

* i = 1: impossible since i > n > 1. 

* i = 2: we must have n = 2 = giving us 

^(i[T o ^'(T)]) = ^(i[T°(i-((i-(T°T))oT))]) 
=sMftcons <y{m ■ (T ° T))° Tl) 
=Map a(i[i[T]-(ToToT)]) 

=VarC(ms 1[T] 

* i>2: 



a(l[To^o r(T)]) = a(l[To^o(l.(r-^(T)o ]))]) = a(l[To^o ^-'(1)° T]) 

n— 1 n— 1 n— 2 



By rule Clos, we have (T(l[ t o.^.o j o -f|-* (1)° T]) = c(l[ T °— ° T ° it' 

n-2 n-2 

(T)][T])- Since i > n, then i — 1 > n — 1 and we can apply the 
induction hypothesis on i, giving us cr(l[t 0...0 |o f|~*~-'^(t)][T 



V.i-1 



]) = c7(i[To...ot][T]) =CTo.i[To...oT 



n-2 



n-2 



n-l 
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We also need a lemma to equalize c-normal forms. 

Lemma 7.16 For all t, u, s and s' in cr-normal form, if cr(t[l • (so |)]) = 
a{t'[l ■ {s'o t)]) then a{t[u ■ s]) = a{t'[u ■ s']). 

Proof: Easy induction on t. ■ 
We can now prove our initialization lemma. 

Lemma 7.17 (Initialisation) For all t, there exists n such that ^te6(t) — 
u and u <t. 

Proof: By induction on the number of reduction steps of Ateb{t) and 
by case analysis of t. 

• If t = n, then Ateb{t) = n and we conclude with u = n. 

• If t = (ti t2), then Ateb{t) = {Ateb{ti) Ateb{t2)). By induction hy- 
pothesis, there exists ui and U2 such that Ateb(ti) — >^ ui and ui < ti 
and Ateb{t2) — >^ U2 and U2 < ^2- We conclude with u = (ui U2). 

• If t = Xt', then Ateb{t) = XAteb{t'). By induction hypothesis, there 
exists u' such that Ateb{t') -^*^ u' . We conclude with u = Xu'. 

• If i = then Ateb{t) = Ateb{t'). By induction hypothesis, there 
exists u' such that Ateb{t') — >^ u' . We take u = u' and we conclude 
with the help of Lemma |7.13[ 

• If t = t'[]], then Ateb{t) = U^{Ateb{t')). By induction hypothesis, 
there exists u' such that Ateb{t') u'. We take u = Uq{u') and we 
conclude with the help of Lemmas |7.14| and |7.15 

• If t = t'[s o s'], then Ateb{t) = Ateb{t'[s][s']). By hypothesis, there 
exists u' such ylte6(t'[s][s']) — >^ u'. Four cases arise with respect to 
the values of PR(s) and PR{s'), in all those cases, we can conclude 
with u = u' . 

• If t = ti[t2 ■ s], then Ateb{t) = Ateb{{Xti)[s]) Ateb{t2). By induction 
hypothesis, there exists ui and U2 such that Ateb{{Xti)[s\) ui and 
ui < (Ati)[s] and Ateb{t2) — >^ U2 and U2 < ^2- There are two cases 
with respect to the form of ui. 

— If ui = At^i (and so -iPi?(s)), then we take u = vi[u2 • id]. We 
must check that u < t and the difficulty resides in the proof of 
a{u) = cr{t). By hypothesis, we have a{Xvi) = a{{Xti)[s]). It 
is obvious that a{Xvi) = a{{Xvi)[id]) = X{a{a{vi)[l ■ {ido ])]))■ 
On the other hand, we have (T((Ati)[s]) = X{(7(a{ti)[l ■ (o"(s)o | 
)])), and it gives us a{a{vi)[l • {ido ])]) = a{a{ti)[l • (cj(s)o | 
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)]). We have the required conditions to apply Lemma 7.16 with 
the term a{u2) that is equal to cr(t2) by hypothesis, and we get 
a{a{vi)[a{u2)-id]) = a{a{ti)[a{t2)-s]) which concludes this point. 

If ui = {Xvi)[si], then we take u = vi[u2 • si] and we conclude 



similarly to the previous point with the help of Lemma 7.16 



7.2.3 Simulation 

We can now perform the simulation. 

Lemma 7.18 (Simulation) For all t reducing by rule B to t' , for all u<t, 
there exists u' such that u reduces in one step to u' and u' < t'. For all he 
other rules, for all t reducing to t' , for all u < t, there exists u' such that u 
reduces in zero or some steps to u' and u' <t'. 

Proof: For all the rules apart from B (i.e. a), the proof is simple. 
u<t gives us u ^ t and (t{u) = cr^t), and, on the other hand, t -^^ t' implies 
a{t) = cr{t'). Two cases are possible with respect to the fact that the redex 
appears also in u. If not, we take u' = u and we directly conclude. Else, we 
reduce it with the same rule and we conclude with cr(u') = cr{u) = cr{t'). 

It's more complicated for the rule B. The hypothesis is the same but 
we are sure that the redex appears in u, that was the point of defining the 
relation ^ with the help of the predicate PR. We then have u u' and 
we want to prove u' < t' . Even if it is obvious that u' ^ t' comes directly 
from u ^ t, it is not the case for the equality of the u-normal forms. We 
want ct{u') = a{t') with the hypothesis a{u) = cr(t). We take t = C[{\v) u;], 
which gives us t' = C[v[w ■ id)^ and u = C'[{\v') w']. Two cases are possible: 

• the redex {Xv) w does not appear in o"(t). It means that the calculus 
of a{t) can be split as follows: 



C[{Xv) w] Ci[T o(C2[(A^;) w] ■ s)] ^suftcons CM a{t) 

Since a{t) = a{u), the same occurs for u. Similarly for the redex, the 
reduct will be erased from t' and from u' and we get cr(u') = cr{t'). 

• the redex {Xv) w does appear in cr{t). We will write, for all t, t for 
cr(t), in order to clarify the presentation of the calculi. We have the 
following equalities: 

t = a{C[{Xv) w]) 
= C^[a{{{Xv) w)M)] 
= C7i[(AcT(v[l.(soT)]))a(w[s])] 
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And, similarly, u = C[[{Xa{Y!_[l ■ (s^o j)])) cr(wl[sl])]. From t = u we 
deduce Ci = C[, cj(v[1 • (so j)]) = a{Y!_[l ■ {s^o j)]) and a{w[s]) = 
o"(w^[s^]). We now look at V and u^: 

t:= a{C[v[wid\]) 

= Ci[a{Y[w-id][s])] 

=cios Ci [<t(v[(w • ic?) O s] )] 

=Map Ci[o-(y[w[s] • s])] 

= Ci[a(v[a(w[s])-s])] 

And similarly, = Cj[(T(yl[cr(w^[sl]) - si])]. From the preceding equal- 
ities, we deduce u^ = C([(T(y^[c7(w[s]) • s^])], and we can conclude with 
the help of Lemma 7.16[ 



Lemma 7.19 For all terms t, if u <t and u € A;^^, then t € A^^. 



Proof: By the simulation Lemma 7.18 and since the cr-calculus is 
terminating [1^ , if we have an infinite derivation of t, then we can also build 
one in u, and that gives us a contradiction. ■ 

Since the Ateb{t) function returns a term t' that reduces to u < t (by 



Lemma 7.17), we know this technique can be applied to this calculus. 



8 Acrn-calculus 

In this section, we study a version with names of the Acr-calculus ^Ij. The 
same remarks will apply here as regards to the application of this technique. 

8.1 Definition 

Terms of the Ao-n-calculus are given by the following grammar: 

t::=x \ {t t) I Xx.t I t[s\ 
s ::= id \ {t/ x) ■ s \ s o s 

Here follows the reduction rules: 
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{Xx.t)u 


—>-B 


{t u)[s] 


''App 


{\x.t)[s] 


^Lambda 


x[id] 


-^Varld 


x[{t/x) • s] 


^VarConsl 


x[{t/y) ■ s] 


^VarC'ons2 


t[s][s'] 


-^Clos 


ido s 


-^IdL 


{{t/x) ■ s)os' 


~^Map 


{si o S2) S3 





t[{u/x) ■ id\ 

m) {u[s]) 

Xy.{t[{y/x) ■ s]) with y fresh 

X 

t 

x[s] {x ^ y) 

t[s o s'] 



{t[s']/x) ■ {sos') 

Si O {S2 O S3) 



8.2 Towcirds strong normalization 

We define the Ateb function as follows: 

Ateb{x) = X 

Ateb{t u) = Ateb{t) Ateb{u) 

Ateb{Xx.t) = Xx.Ateb{t) 

Ateb{t[id]) = Ateb{t) 

Ateb{t[s o s']) = Ateb{t[s][s']) 

Ateb{t[{t'/x) ■ s]) = Ateb{{Xx.t)[s]) Ateb{t') 

It is obvious that for any t, Ateb{t) does not contain substitutions. We 
must check that the term we obtain is typeable. 

Lemma 8.1 

T\-t:A ^ r h Ateb{t) : A 
Proof: By induction on t. 

• t = X and 



X : A,A\- X : A 
We have Ateb{t) = x and the same typing derivation. 
t = {u v) and 

T\-u: B ^ A r\-v:B 
{uv):A 

By induction hypothesis, we have T l- Ateb{u) : B ^ A and T h 
Ateb{v) : B. We can type Ateb{t) = Ateb{u) Ateb{v) as follows 



40 



r h Ateb{u) :B ^ A T h Ateb{v) : B 
r h {Ateb{u) Ateb{v)) : A 

t = Xx.u and 

X : B,T\- u : A 
r h Xx.u -.B^ A 

By induction hypothesis, we have T,x : B \- Ateb{u) : A. We can type 
Ateb{t) = Xx.Ateb{u) as follows 

x: B,rh Ateb{u) : A 
r h Xx.Ateb{u) :B^ A 

t = u[id\ and 

r\-id>r r\-u:A 

r h -ufzd] : A 
We directly conclude by induction hypothesis. 
t = u[{v/x) ■ s] and 

ri-sor^ r\-v: B 

T\- (v/x) ■ st>x : B,T' x : B,T' ^ u: A 
r h u[{v/x) ■s]:A 

By induction hypothesis, we have F I- Ateb{{Xx.u)[s]) : B ^ A and 
r h Ateb{v) : B. We conclude with the following typing derivation 

r h Ateb{{Xx.u)[s\) -.B^A T h Ateb{v) : B 
r h Ateb{{Xx.u)[s\) Ateb{v) : A 

t = u[s o s'], we conclude directly by induction hypothesis. 
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8.3 Definition of the relation < 

We proceed as in the previous section, but more easily since there is no |. 



We use the same notion of redexabihty (see 7.10) and the relation =<; is define 



similarly (without the |). We define the relation < as follows. 

Definition 8.2 For all t and u, u <t <^=^ u =4 i and a{t) = cr(n). 

We will use Lemma [7.13l and we need a new formulation of the Lemma [7.16[ 

Lemma 8.3 For all t, u, s and s' in cx-normal form, if a(t[{y/x) ■ s]) = 
a{t'[{y/x) ■ s']) then a{t[{u/x) ■ s]) = a{t'[{u/x) ■ s']). 

Proof: Easy induction. ■ 
Here follows our initialization Lemma. 

Lemma 8.4 (Initialisation) For all t, there exists u such that Ateb{t) — >^ 
u and u <t. 

Proof: By induction on t. 

• If t = X, then Ateb(t) = x and we conclude with u = x. 

• If t = (ti t2), then Ateb{t) = {Ateb{ti) Ateb{t2)). By induction hy- 
pothesis, there exists ui and U2 such that Ateb{ti) — >^ ui and ui < ti 
and Ateb{t2) — >^ U2 and U2 < ^2- We conclude with u = (ui U2). 

• If t = Xx.t', then Ateb(t) = Xx.Ateb(t'). By induction hypothesis, 
there exists u' such that Ateb{t') -^*^ u'. We conclude with u = Xx.u'. 

• If t = then Ateb(t) = Ateb{t'). By induction hypothesis, there 
exists u' such that Ateb{t') -^*^ u' . We take u = u' and we conclude 
with the help of Lemma |7.13[ 

• If t = t'[sos'], then Ateb{t) = Ateb{t'[s][s']). By induction hypothesis, 
there exists u' such that ^te6(f'[s] [s']) — >^ u'. We conclude with 
u = u' . 

• Ut = ti[{t2/x)-s], then Ateb{t) = Ateb{{Xx.ti)[s]) Ateb{t2). By induc- 
tion hypothesis, there exists ui and U2 such that Ateb{{Xx.ti)[s]) — >^ 
Ml and ui < {Xx.ti)[s] and Ateb{t2) -^*^ U2 and U2 < t2- There are two 
cases with respect to the form of ui. 

— If ui = Xx.vi (and so -iPi?(s)), then we take u = vi[{u2/x) ■ id]. 
We need to check that u<t and the difficulty resides in the proof 
of a{u) = cr{t). By hypothesis, we have a{Xx.vi) = a{{Xx.ti)[s]). 
It is obvious that a{Xx.vi) = a{{Xx.vi)[id]) = Xy.{a{a{vi)[{y/x) ■ 
id])). On the other hand, we have (T((Aa;.ii)[s]) = Xy.{a{a{ti)[{y/x)- 
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cr(s)])), which gives us a{a{vi)[{y/x)-id]) = a[a{ti)[[y/x)-a[s)]). 



We can apply Lemma 8.3 with (j{u2) that is equal to (y{t2) by hy- 
pothesis, that gives us a{a(vi)[[a{u2) / x)-id]) = a[a(ti)[[a{t2) / x)- 
s]) and we can conclude. 

If ui = (Aa;.t;i)[si], then we take u = vi[{u2/x) ■ si] and we 
conclude similarly with the help of Lemma |8.3[ 



8.3.1 Simulation 

The simulation will be similar to that defined for Act. 

Lemma 8.5 (Simulation) For all t reducing with the rule B to t', for all 

u < t, there exists u' such that u reduces in one step to u' and u' < t' . For 
all the other rules, for all t reducing to t' , for all u < t, there exists u' such 
that u reduces in zero or some steps to u' and u' < t' . 

Proof: For all the rules except B (namely a), the proof is simple. u<t 
gives us u =4 t and (t(u) = cr(t), and, on the other hand, t -^^ t' implies 
a{t) = There are two cases with respect to the fact that the redex 

appears in u. If not, we take u' = u and we conclude directly. Else, we 
reduce it with the same rule and we conclude with cr(u') = cr(n) = cr{t'). 

For the rule B, it's more complicated. The hypothesis is he same, but 
we are sure that the redex appears in u, that was the point of defining the 
relation ^ with the help of the predicate PR. We then have u u' and we 
want to prove u' <t'. Even if it is obvious that u' ^ t' comes directly from 
u ^ t, it is not the case for the equality of the c-normal forms. We want 
(t(u') = cr(t') with the hypothesis a{u) = cr{t). We take t = C[{Xx.v) w], 
which gives us t' = C[v[{w/x) ■ id]] and u = C'[{Xx.v') w']. Two cases are 
possible: 



the redex (Xx.v) w does not appear in cr^t). That means that the 
calculus of a{t) can be split as follows: 



C[{Xx.v) w] Ci[y[i{C2[iXx.v) w])/xys]] ^varCons2 Ci[y[s]] ait) 

Since cr(t) = cr(u), it occurs similarly for u. As for the redex, the 
reduct will be erased from t' and from u' and we get ct{u') = (y{t'). 

the redex {Xx.v) w does appear in ait). We will write, for all t, t for 
o"(t), in order to clarify the presentation of the calculi. We have the 
following equalities: 
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t = a{C[{Xx.v) w]) 

= CMii^x.v) w)M)] 

= Ci[(Ay.a(v[(y/x).s]))a(w[s])] 

And, similarly, u = C[[{Xy.a{Yl.[{y/x) • s^])) o-(w^[s^])]. From t = u 
we deduce Ci = C(, o-(v[(y/x) • s]) = cr{v^[{y/x) • s^]) and a(w[s]) = 
cj(w^[sl]). We now look at V and u^: 



t:= a{C[v[wid]]) 
= Ci[a{Y[w-id][s])] 
=Clos C'i[cr(v[(w-id) os])] 

=Map Clk(v[w[s] • s])] 

= Ci[a(v[a(w[s])-s])] 

And similarly, = C^[o"(V[a"(w^[s^]) • s^])]. From the preceding equal- 
ities, we deduce u^ = C([(T(V[cr(w[s]) • s^])], and we can conclude with 



the help of Lemma 8.3 



Lemma 8.6 For all terms \i u <t and u G A^^, then t G A^^. 



Proof: By the simulation Lemma 8.5 and since the <T-calculus is 
terminating [1 , if we have an infinite derivation of i, then we can also build 
one in n, and that gives us a contradiction. ■ 

Since the Ateb{t) function returns a term t' that reduces to u <t (by 
Lemma |8. 41), we know this technique can be applied to this calculus. 



9 A/i/i-calculus 

The A/u/i-calculus is a symmetric non-deterministic calculus that comes from 
classical logic. Its terms represent proof in classical sequent calculus. We 
can add to it explicit substitutions " la" Ax. 



9.1 Definition 

We have four syntactic categories: terms, contexts, commands and substi- 
tutions ; respectively denoted f , e, c and r. We give to variable sets: Var 
is the set of term variables (denoted x, y, z etc.); Var^ is the set of context 
variables (denoted a, /3, 7 etc.). We will denote by * a variable for which 
the set to which it belong does not care, and by t an undetermined syntactic 
object among v, e and c. 

The syntax of the A/i/i-calculus is given by the following grammar: 
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c ::= {v\e) \ ct 

V ::= X I Xx.v \ e ■ v \ jia.c \ vt 
e ::= a | aX.e \ v ■ e \ fix.c \ er 
r ::= [a; <— | [a <— e] 

The source Dom{T) of r is x if r = [x <— v] and a if r = [a <— e]. The 
substitucnd S{t) is v and e respectively. 

The reduction rules are given below. Remark that the rules (//) and (/i) 
gives a critical pair: 





(Ax.f f' • e) 




{v'\'jlx.{v\e)) 




(e' • w|aA.e) 




{lia.{v\e)\e') 


(/^) 


{fj,a.c\e) 




c[a <— e] 


(A) 


{v\jlx.c) 




c[x <— u] 


(cr) 


(f |e)r 




(frier) 


(xrl) 


x[a; <— v] 




V 


{xt2) 


XT 




X 


(arl) 


a[a <— e] 




e 


(ar2) 


ar 




a 


(•r) 


{v ■ e)r 




(?;r) • (er) 


(•r) 


(e • v)t 




(er) • (vr) 


(At) 


{Xx.v)t 




Ax.(t;r) 


(At) 


{aX.e)T 




aA.(er) 


(Mr) 


{fia.c)T 




/ia.(cr) 




{Jix.c)t 




}1x.{ct) 



If X Domij) 
If a ^ Dom{T) 



For the rules (/xr) and (Ar) (resp. (/ir) and (Ar)) we might perform 
a-conversion on the bound variable a (resp. x) if necessary. We add two 
simplification rules: 

[sv) ^a.{v\a) — > V Si a ^ u 
(se) /xx.(x|e) — ^ e Si x ^ e 

Here follows the typing rules: 

rhv:yl|A r|e:ylhA 



{v\e) : (r h A) 
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T\a : A\- A,a : A T,x : A\- A\x : A 
r\e: B\- a: A,A r,x : A\- v. B\A 



r|aA.e : ^ - B h A T \- Xx.v : A ^ B\A 

T\-v:A\A T\e:B\-A T h v : B\A r|e : ^ h A 

r\ve: A^ B\- A Th e-v: A- B\A 

c: {r,x : Ah A) c:{rha:A,A) 

T\ilx.c: A\- A T \- fia.c : A\A 

r\-v:A\A T\e:A\-A 



[x^v]: (r,x : h A) ^ (r h A) [a ^ e] : {T \- a : A, A) ^ {T \- A) 

T\e:A\-A r : (r h A) ^ (r' h A') T \- v. A\A r : (r h A) ^ (r' h A') 
r'|er : A' V \- vt : A\A' 

c : (r h A) r : (r h A) ^ (r' h A') 
cr : (r' h A') 

9.2 Strong normalization 

We define the Ateb function as follows: 



Ateb{x) 




= X 




Ateb{a) 




= a 




Ateb{{v\e)) 




= {Ateb{v)\Ateb{e)) 




Ateb{Xx.v) 




= Xx.Ateb{v) 




Ateb{aX.e) 




= aX.Ateb{e) 




Ateb{fj,a.c) 




= fj,a.Ateb{c) 




Ateb{flx.c) 




= flx.Ateb{c) 




Ateb{e ■ v) 




= Ateb{e) ■ Ateb{v) 




Ateb{v ■ e) 




= Ateb{v) ■ Ateb{e) 




Ateb{c[x <— 


v]) 


= {Ateb {v)\ fix. Ateb {c)) 




Ateb{c[a ^ 


e]) 


= {fj.a. Ateb {c)\ Ateb {e)) 




Ateb{v[x <— 


v']) 


= iJ,a.{Xx. Ateb (v)\ Ateb (v') ■ a) 


with a fresh 


Ateb{v[a <— 


e]) 


= fiP.{na.{Ateb{v)\p)\Ateb{e)) 


with (3 fresh 


Ateb{e[x <— 


v]) 


= fly.{Ateb{v)\fix.{y\Ateb{e))) 


with y fresh 


Ateb{e[a <— 


e']) 


= jlx.{Ateb{e') ■ x\aX.Ateb{e)) 


with X fresh 



It is obvious that for all t, Ateb{t) does not contain substitutions. We 
must check firstly that the returned term is typeable, and secondly that it 
reduces to the original term. 
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Lemma 9.1 

T\-t:A => r h Ateb{t) : A 

Proof: By induction of the typing derivation of t. The only interesting 
cases are those of substitutions. 

• We type c[x v] 

Thv: A\A 

c:{r,x:A\- A) [x ^ v] : {r,x : A\- A) ^ {T h A) 
c[x ^ : (r h A) 

By induction hypothesis, we have Ateb{c) : (T,x : ^4 h A) and T h 
Ateb{v) : A\A. We can type Ateh{c[x ^ v\) = {Ateb{v)\ilx.Ateb{c)) 
as fohows 

Ateb{c) ■.{T,x: Ah A) 
r h Ateb{v) : A\A T\jlx.Ateb{c) : A\- A 
{Ateb{v)\ilx.Ateb{c)) : (r h A) 

• The case c[a e] is similar to the previous one by symmetry. 

• We type v[x v'] 

Thv' : B\A 

T,x : B\- V : A\A [x ^ v'] : {T,x : B \- A) ^ {T \- A) 
r\-v[x^ v'] : A\A 

By induction hypothesis, we have T,x : B h- Ateb(v) : A\A and F h 
Ateb{v') : B\A. We can type ^te6(i;[a; ^ v']) = na.{Xx.Ateb{v)\Ateb{v')- 
a) as follows 

T,x:B\- Ateb{v) : A\A T h Ateb{v') : B\A 

T,x:B\- Ateb{v) : A\A,a: A T h Ateb{v') : B\A,a: A r|a : ^ h A, a : ^ 
r h Xx.Ateb{v) : B A\A, a : A r\Ateb{v') ■ a : B ^ A\- A,a : A 

{Xx.Ateb{v)\Ateb{v') ■ a) : {T h A, a : A) 
r h iia.{Xx.Ateb{v)\Ateb{v') ■ a) : ^|A 

• We type -yfo; e] 

r I- e : B\A 

r\-v:A\A,a:B [a ^ e] : {F h A, a : B) ^ {T \- A) 
T\-v[a^e]: A\A 
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By induction hypothesis, we have T h Ateb{v) : yl|A,a : B and T H 
Ateb{e) : B\A. We can. type Ateb{v[a ^ e]) = iJ,p.{iJ,a.{Ateb{v)\l3)\Ateb{e)) 
as follows 



r h Ateb{v) : A\A,a : B 
Ateb{v) : A\A,f5: A,a: B T\I3 : A^ A, (3 : A,a : B 

{Ateb{v)\l3) ■.{ThA,l3:A,a:B) V h Ateb{e) : B\A 

r h na.{Ateb{v)\(3) : B\A,P: A T \- Ateb{e) ■.B\A,P:A 

{na.{Ateb{v)\P)\Ateb{e)) : {T \- A, p : A) 
r h iip.{na.{Ateb{v)\(3)\Ateb{e)) : A\A 

• The cases for e[* <— i] are similar to the previous ones by symmetry. 



Lemma 9.2 

Ateb{t) t 

Proof: By induction on t. The only interesting cases are those of 
substitutions. 

• We have Ateb{c[x <— v]) = {Ateb{v)\jlx.Ateb{c)) and 

{Ateb{v)\flx.Ateb{c)) -^^ Ateb{c)[x ^ Ateb{v)] 
Wc conclude by induction hypothesis. 

• The case c[a <— e] is similar to the previous one by symmetry. 

• We have Ateb{v[x <— v']) = iJ,a.{Xx.Ateb{v)\Ateb{v') ■ a) and 

IJ,a.{Xx.Ateb{v)\Ateb{v') ■ a) 

i/3 

IJ,a.{Ateb{v')\jj,x. {Ateb{v)\a)) 
fia.{{Ateb{v)\a)[x ^ Ateb{v')]) 

i CT 

tJ,a.{Ateb{v)[x ^ Ateb{v')]\a[x ^ Ateb{v')]) 

i aT2 

Ha.{Ateb{v)[x ^ Ateb{v')]\a) 
i sv 

Ateb{v)[x ^ Ateb{v')] 
We conclude by induction hypothesis. 



• We have Ateb{v[a e]) = fi(3.{iJ,a.{Ateb{v)\/3)\Ateb{e)) and 



fip.{lia.{Ateb{v)\P)\Ateb{e)) 
Hp.{{Ateb{v)\p)[a ^ Ateb{e)]) 

i CT 

IJ,l3.{Ateb{v)[a ^ Ateb{e)]\(3[a ^ Ateb{e)]) 
i ar2 

liP.{Ateb{v)[a ^ Ateb{e)]\P) 

i sv 

Ateb{v)[a ^ Ateb{e)] 
We conclude by induction hypothesis. 
• The cases for e[* <— t] are similar to the previous ones by symmetry. 



10 Conclusion 

The technique formalized here gives a new tool to prove strong normalization 
of calculi with explicit substitutions. As wc have seen, the principle of the 
proof technique is simple, and the difficulties arise in the definition of the 
reverse rewriting rule that must satisfy precise criteria. 

We applied this technique to several calculi, yielding the following results: 

• Ax: there is here no novelty since it is this case that originally inspired 
the technique. 

• Xv: we gives here the first strong normalization proof for this calculus. 

• Act: this calculus does not enjoy PSN, but we showed that no further 
objection relies to prove strong normalization. 

• A(T„: as above. 

• A^^: the technique seems to fail due to the presence of labels. Further 
investigations would be necessary to find how this can be fixed.. 

• Xwsn- the technique can be used, even if this calculus has currently no 
proof of PSN. 
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